Solved

2003 SP2 Domain Controller Issues?

Posted on 2008-10-03
3
312 Views
Last Modified: 2012-05-05
Hi All,

We are currently running a single forest with 4 domains.  We have 3 child domains and an empty forest root.  The forest and domain function levels are 2003 all around.  We would like to introduce an additional domain controller (2003 SP2...just SP2, not R2) into one of the child domains.

Anyone see any issues with the above?  

Thanks.  
0
Comment
Question by:bsohn417
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 70

Accepted Solution

by:
KCTS earned 250 total points
ID: 22633617
Not am issue

Install Windows 2003 on the new machine
Assign the new computer an IP address and subnet mask on the existing network (subnet)

Make sure that the preferred DNS server on new machine points to the existing DNS Server on the Domain (normally the existing domain controller for the child domain that you want to join)

Join the new machine to the existing child domain as a member server


From the command line promote the new machine to a domain controller with the DCPROMO command from the command line Select Additional Domain Controller in an existing Domain and select the child domain

0
 
LVL 57

Assisted Solution

by:Mike Kline
Mike Kline earned 250 total points
ID: 22635503
No issues at all, you should be fine.  If running Active Diectory DNS also install DNS on the box and let DNS replicate.

Not sure if you want to make it a global catalog but that is something to consider.

After promotion make sure it is in the correct site

Some other things we check after a promotion:

Check the DCPromoUI log for any errors
Check the server event logs for any errors
Check the SYSVOL for policy replication
Check for replication failures using RepAdmin /showreplrify DNS entries for the new DC in the forest root - DSAGUID and GC entries (GC entries don't show up until repl has completed, if the box will be a GC)

Thanks
Mike


0
 
LVL 57

Assisted Solution

by:Mike Kline
Mike Kline earned 250 total points
ID: 22636339
my sententences ran together there:

Last two should have read

Check for replication failures using RepAdmin /showrepl

Verify DNS entries for the new DC in the forest root - DSAGUID and GC entries (GC entries don't show up until repl has completed, if the box will be a GC)
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Always backup Domain, SYSVOL etc.using processes according to Microsoft Best Practices. This is meant as a disaster recovery process for small environments that did not implement backup processes and did not run a secondary domain controller that ne…
A hard and fast method for reducing Active Directory Administrators members.
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question